Comment by bitmasher9
3 days ago
Attestation from government sounds like the ideal solution. This could actually provide _more_ privacy because we can begin using attestation for things we currently use IDs for such as “Has the privilege of driving a car” or “Can purchase alcohol”
Amazing how fast these systems go from "zero knowledge" to "route the request through the government system every time you use your ID"
there is no "route the request through the government system every time you use your ID".
you get your sd-jwt document signed once and you reuse it for like 30 days or so.
I was responding to the comment above mine, which was calling for attestation from the government for specific privileges.
> you get your sd-jwt document signed once and you reuse it for like 30 days or so
So it still gets routed through the government once a month if you plan on using it.
3 replies →
Technically, if your phone needs to be remote attested, it can be considered a government system, not a user's system.
3 replies →
Except it wouldn't need to be every request. Just the first one.
All these services have accounts, and the only time you need to do an age check is when the account is created.